VPN L2TP with NAT and DDNS

GLPallai
GLPallai Posts: 10  Freshman Member
First Comment
edited April 2021 in Security
I have a Zywall 110 with two routers, one, slow, has publi IP, the other, fast, has a dynamic IP.
I already configured VPN through the slow connection, but I would run it on the faster one.
May I configure L2TP VPN through the secon web access?
How should I do? 
Thank You!
GLP
«1

Comments

  • Zyxel_Cooldia
    Zyxel_Cooldia Posts: 1,511  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 1000 Comments
    @GLPallai,
    For L2TP VPN connection, we only can select 1 interface for VPN connection. It is unable to select multi interface.I would suggest set up VPN connection on dynamic IP and create DDNS for this dynamic IP address. L2TP client connect this interface via DDNS for fast VPN access


  • GLPallai
    GLPallai Posts: 10  Freshman Member
    First Comment
    I would like to do that, but I don'y understand how to create the Host, using dynamic ip.
    Do you have a guide? 
  • GLPallai
    GLPallai Posts: 10  Freshman Member
    First Comment
    PS thank you for your quick answer!
  • Zyxel_Cooldia
    Zyxel_Cooldia Posts: 1,511  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 1000 Comments

    @GLPallai,

    You have to register a account on DDNS service provider(eg. NO-IP or DynDNS), and create a DNS hostname for dynamic IP, then configure the DDNS on USG for IP updating .

    USG DDNS configuration as below,






  • GLPallai
    GLPallai Posts: 10  Freshman Member
    First Comment
    Thank you for your quick answer, I already configured ddns.
    My problem is to activate a vpn through wan2 that has dynamic ip and DDNS service.
    Because when I reach the step where I have to configure the host object I cannot do that...
    May You send me a guide about how to configure a L2TP VPN using dynamic ip?
    As I found only a site to site guide with ddns, but I am not able to modify it for my purposes.
    Thank you.

  • GLPallai
    GLPallai Posts: 10  Freshman Member
    First Comment
    I am looking for the changes to apply after having used this guide: https://www.youtube.com/watch?v=vfbPFaifpbY
  • GLPallai
    GLPallai Posts: 10  Freshman Member
    First Comment
    Is there a guide to configure my Zywall 110 as a L2TP VPN server behind NAT with Dynamic DNS?
    I am getting mad to resolve this problem!
  • Zyxel_Cooldia
    Zyxel_Cooldia Posts: 1,511  Zyxel Employee
    Zyxel Certified Network Administrator - Security Zyxel Certified Sales Associate 100 Answers 1000 Comments
    Hi@GLPallai,

    Here is reference guide for L2TP server behind NAT scenario.
    https://businessforum.zyxel.com/discussion/675/how-do-i-configure-the-zywall-for-a-l2tp-server-behind-nat#latest
    From your description, one of the USG interface is behind a router.  USG wan interface get private IP from upper layer router.
    In this scenario, you may set up DDNS on upper layer router, since USG cannot aware the upper layer router public IP change.





  • GLPallai
    GLPallai Posts: 10  Freshman Member
    First Comment
    Ok, thank you! I'll try, actually mi trouble is that I am a Zywall dummy!

  • Alan
    Alan Posts: 1  Freshman Member
    First Comment
    Hi,
    Site-to-site VPN...Can it be done with DDNS ?
    I do not subscribe fix WAN Public IP. I use DDNS to identify my Gateway router.Example 
    site1.dyndns.org -> site2.dyndns.org

Security Highlight